EAST Search History 



Ref 

# 


Hits 


Search Query 


DBS 


Default 
Operator 


Plurals 


Time Stamp 


SI 


2761 


(726/4-7).CCLS. 


US-PGPUB; 
USPAT 


OR 


OFF 


2007/07/05 12:36 


52 


1004 


(726/4-7).CCL5. 


USPAT 


OR 


OFF 


2007/07/05 13:15 


S3 


6 


security adj level with (login log adj 
in ) near4 (count attempt number 
times) 


US-PGPUB; 

USPAT; 
USOCR; 
EPO; JPO; 
DERWENT; 
IBM_TDB 


OR 


ON 


2007/07/05 13:19 


S4 


192 


Si and (login log adj in ) near4 
(count attempt number times) 


US-PGPUB; 

USPAT; 

USOCR; 

EPO; JPO; 

DERWENT; 

IBM_TDB 


OR 


ON 


2007/07/05 13:20 


S5 


35 


SI and (login log adj in )near4 (tries 
attempt) near4 (count number 
times) 


US-PGPUB; 

USPAT; 

USOCR; 

EPO; JPO; 

DERWENT; 

IBM_TDB 


OR 


ON 


2007/07/05 14:40 


S6 


0 


(security near4 (level condition) 
with (last near4 (login log adj in))) 


US-PGPUB; 

USPAT; 

USOCR; 

EPO; JPO; 

DERWENT; 

IBM^TDB 


OR 


ON 


2007/07/05 14:46 


S7 


401 


((last near4 (login log adj in))) 


US-PGPUB; 

USPAT; 

USOCR; 

EPO; JPO; 

DERWENT; 

IB!W|_TDB 


OR 


ON 


2007/07/05 14:34 


S8 


26 


((last near4 (login log adj in))) and 
SI 


US-PGPUB; 

USPAT; 

USOCR; 

EPO; JPO; 

DERWENT; 

IBM_TDB 


OR 


ON 


2007/07/05 14:48 


S9 


1 


("5,606,663").PN, 


US-PGPUB; 
USPAT 


OR 


OFF 


2007/07/05 14:38 


SIO 


0 


furukawa-aklra.ln. and (log adj in), 
ti. 


US-PGPUB; 

USPAT; 
USOCR; 
EPO; JPO; 
DERWENT; 
IBM_TDB 


OR 


ON 


2007/07/05 14:39 



7/5/2007 6:21:34 PM 

C:\Documents and Settlngs\jkim\My Documents\EAST\Workspaces\10773338.wsp 



Page 1 



EAST Search History 



Sll 


0 


akira.in. and (log adj in).ti. 


US-PGPUB; 

USPAT; 

USOCR; 

EPO; JPO; 

DERWENT; 

IBM_TDB 


OR 


ON 


2007/07/05 14:39 


S12 


0 


furukawa.in. and (log adj tn).ti. 


US-PGPUB; 

USPAT; 

USOCR; 

EPO; JPO; 

DERWENT; 

IBM_TDB 


OR 


ON 


2007/07/05 14:39 


S13 


1 


furukawa.in. and (log-in).ti. 


US-PGPUB; 

USPAT; 

USOCR; 

EPO; JPO; 

DERWENT; 

IBM_TDB 


OR 


ON 


2007/07/05 14:40 


S14 


5 


SI and (log-in)near4 (tries attempt) 
near4 (count number times) 


US-PGPUB; 
USPAT; 
USOCR; 
EPO; JPO; 

DERWENT; 
IBM_TDB 


OR 


ON 


2007/07/05 14:40 


S15 


1 


(security near4 (level condition) 
witli (last near4 (login log-In))) 


US-PGPUB; 

USPAT; 

USOCR; 

EPO; JPO; 

DERWENT; 

IBM.TDB 


OR 


ON 


2007/07/05 16:08 


S16 


5 


(security near4 (level condition) 
same (last near4 (login log-in))) 


US-PGPUB; 

USPAT; 

USOCR; 

EPO; JPO; 

DERWENT; 

IBM_TDB 


OR 


ON 


2007/07/05 14:46 


S17 


1 


((last near4 (log-in))) and SI 


US-PGPUB; 

USPAT; 

USOCR; 

EPO; JPO; 

DERWENT; 

IBM_TDB 


OR 


ON 


2007/07/05 15:04 




141 


^cpwpral nliiralitv diffprpnt multinlpl 

near3 (login log adj in log-in) near4 
(procedure method operation) 


US-PGPUB" 

USPAT; 

USOCR; 

EPO; JPO; 

DERWENT; 

IBM_TDB 


OR 


ON 


2007/07/05 15*06 


S19 


0 


("7079652").URPN. 


USPAT 


OR 


ON 


2007/07/05 16:02 



7/5/2007 6:21:34 PM 

C:\Documents and Settings\jklm\l^y Documents\EAST\Workspaces\10773338.wsp 



Page 2 



EAST Search History 



S20 



S21 



S22 



13 



162 



("20020083323" | "4816654" | 
"5289540" I "5532690" | "5544321" 
I "5757916" I "5799082" | 
"6161185" I "6308273" | "6317500" 
I "6609198" I "6614349" | 
"6778837").PN. 

(security near4 (level condition) 
same (last near4 (login log-in))) 



(determin$3 ascertain$3) near4 (log 
adj in log-in login) near4 (procedure 
mode method test) 



US-PGPUB; 


OR 


ON 


USPAT; 






USOCR 






US-PGPUB; 


OR 


ON 


USPAT; 






USOCR; 






EPO; JPO; 






DERWENT; 






IBI^_TDB 








vJK 




USPAT; 






USOCR; 






EPO; JPO; 






DERWENT; 






IBM_TDB 













2007/07/05 16:02 



2007/07/05 16:48 



2007/07/05 16:49 



7/5/2007 6:21:34 PM 

C:\i3ocuments and Settings\jl<im\My Documents\EAST\Workspaces\10773338.wsp 



Page 3 



--Re,sults (page 1): +("login attempts") +("login procedure") +("last login") -i-("security leve... Page 1 of 6 



a PeRTAL 



USPTO 



fc^i mm m®m 



Subscribe (Full Service) Register (Limited Service, Free) Login 

Search: ® The ACM Digital Library O The Guide 
| +("login attempts") +("login procedure") +("last login") +("se( 



Terms used: login attempts login procedure last log in security 
level 



Feedback Report a problem Satisfaction 
survey 

Found 872 of 205,978 



Sort results 
by 



relevance ^ ^ Save results to a Binder Try an Advanced Search 

-—J Trv fhiQ QParrh in Thp AC 

^ Search Ti ps 



Try this search in The ACM Guide 



^'sP|^y [e xpanded forrn 



□ Open results in a new 
window 



Results 1 - 20 of 200 

Best 200 shown 



Result page: 1234 56789 10 next 

Relevance scale □ □ H B ■ 



^ Cryptogra phy and data security 
Dorothy Elizabeth Robling Denning 
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From the Preface (See Front Matter for full Preface) 

Electronic computers have evolved from exiguous experimental enterprises in the 1940s 
to prolific practical data processing systems in the 1980s. As we have come to rely on 
these systems to process and store data, we have also come to wonder about their ability 
to protect valuable data. 

Data security is the science and study of methods of protecting data in computer and 
communication systems from unauthorized disclosure ... 

2 On counterin g online dictionary attacks with login histories and humans-in-the-loo p 
Paul C. Van Oorschot, Stuart Stubblebine 

August 2006 ACM Transactions on Information and System Security (TISSEC), volume 9 

Issue 3 
Publisher: ACM Press 

Full text available: pdf(305.97 KB ) Additional Information: full citation , abstract , references , index terms 

Automated Turing Tests (ATTs), also known as human-in-the-loop techniques, were 
recently employed in a login protocol by Pinkas and Sander (2002) to protect against 
online password-guessing attacks. We present modifications providing a new history- 
based login protocol with ATTs, which uses failed-login counts. Analysis indicates that the 
new protocol offers opportunities for improved security and user friendliness (fewer ATTs 
to legitimate users) and greater flexibility (e.g., allowing protocol ... 

Keywords: Mandatory human participation schemes, online dictionary attacks, password 
protocols, relay attack, usable security 
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December 1993 Proceedings of the 1st ACM conference on Computer and 
communications security CCS '93 

Publisher: ACM Press 

Full text available: ^pdf(1.1 9 MB ) Additional Information: full citation , abstract , references , index terms 

The resulting national focus on Network Integrity issues, spawned the development of an 
industry commitment to affect and realize a minimum security baseline for interconnected 
SS7 networks. In addition the affected carriers in those outage have accelerated their 
pursuit of secure solutions to today's intelligent networking. [2]This paper will focus on the 
development of the baseline and the current effort to take the baseline into national, e.g., 
National Ins ... 



* The multics system: an examination of its structure 
Elliott I. Organick 
January 1972 Book 

Publisher: MIT Press 
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Full text available: TO pdf(23.94 MB) ^ 

^ terrns 

This volume provides an overview of the Multics system developed at M.I.T.— a time- 
shared, general purpose utility like system with third-generation software. The advantage 
that this new system has over its predecessors lies in its expanded capacity to manipulate 
and file information on several levels and to police and control access to data in Its 
various files. On the invitation of M.I.T.'s Project MAC, Elliott Organick developed over a 
period of years an explanation of the workings, concep ... 

5 Integrating security in a large distributed system 
^ M. Satyanarayanan 

August 1989 ACM Transactions on Computer Systems (TOCS), volume i issue 3 
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Andrew is a distributed computing environment that Is a synthesis of the personal 

computing and timesharing paradigms. When mature, it is expected to encompass over 
5,000 workstations spanning the Carnegie Mellon University campus. This paper examines 
the security issues that arise in such an environment and describes the mechanisms that 
have been developed to address them. These mechanisms include the logical and physical 
separation of servers and clients, support for secure communication ... 

6 Password mana g ement, mnemonics, and mother's maiden names: Pass pet: 
^ convenient password management and phishing protection 

^ Ka-Ping Yee, Kragen Sitaker 

July 2006 Proceedings of the second symposium on Usable privacy and security 

SOUPS '06 
Publisher: ACM Press 

Full text available: 'g[ pdf (479.35 KB^ Additional Information: full citation , abstract , references , index terms 

We describe Passpet, a tool that Improves both the convenience and security of website 
logins through a combination of techniques. Password hashing helps users manage 
multiple accounts by turning a single memorized password into a different password for 
each account. User-assigned site labels (petnames) help users securely Identify sites in 
the face of determined attempts at Impersonation (phishing). Password-strengthening 
measures defend against dictionary attacks. Customizing the user interfac ... 
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Publisher: ACM Press 
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Full text available: TO pqt(o23.00 KB) . 
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Tfie variables that help make a handwritten signature a unique human identifier also 
provide a unique digital signature In the form of a stream of latency periods between 
keystrokes. This article describes a method of verifying the identity of a user based on 
such a digital signature, and reports results from trial usage of the system. 

8 Authentication and authorization: Securing passwords against dictionary attacks 
Benny Pinkas, Tomas Sander 

November 2002 Proceedings of tlie 9th ACM conference on Computer and 

communications security CCS '02 
Publisher: ACM Press 

Full text available- 151 pdf(216 72 KB) A^^'^'^"^' Information: full citation , abstract , references , citings, index 
u e aval a e.-gjn , terms 

The use of passwords Is a major point of vulnerability in computer security, as passwords 
are often easy to guess by automated programs running dictionary attacks. Passwords 
remain the most widely used authentication method despite their well-known security 
weaknesses. User authentication is dearly a practical problem. From the perspective of a 
service provider this problem needs to be solved within real-world constraints such as the 
available hardware and software infrastructures. From a user' ... 

Configuration management & security: AMNESIA: analysis and monitorin g for 
N Eutralizin g SQ L-injec tion at t acks 
William G. J. Halfond, Alessandro Orso 

November 2005 Proceedings of the 20th IEEE/ACM international Conference on 
Automated software engineering ASE *05 

Publisher: ACM Press 
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Full text available: TO pdf( 315.42 KB ) ^ 

^ terms 

The use of web applications has become Increasingly popular in our routine activities, 
such as reading the news, paying bills, and shopping on-line. As the availability of these 
services grows, we are witnessing an increase in the number and sophistication of attacks 
that target them. In particular, SQL injection, a class of code-injection attacks in which 
specially crafted input strings result in illegal queries to a database, has become one of 
the most serious threats to web applications. In t ... 

Keywords: SQL injection, runtime monitoring, static analysis 



Password hardening based on keystroke dynamics | 
Fabian Monrose, Michael K. Reiter, Susanne Wetzel 

November 1999 Proceedings of the 6th ACM conference on Computer and 

communications security CCS '99 
Publisher: ACM Press 

r- .. X ^ I ui 01 ^f/-, n4 Additional Information: full citation , abstract , references , citing s, index 
Full text available: TO pdfd.OI MB) ^ 

terms 

We present a novel approach to improving the security of passwords. In our approach, 
the legitimate user's typing patterns (e.g., durations of keystrokes, and latencies between 
keystrokes) are combined with the user's password to generate a hardened password that 
is convincingly more secure than conventional passwords against both online and offline 
attackers. In addition, our scheme automatically adapts to gradual changes In a user's 
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typing patterns while maintaining the s ... 

11 Password nfianagennent . mnemonics, and mother's maiden names: Password 
^ management strategies for online accounts 
^ Shirley Gaw, Edward W. Felten 

July 2006 Proceedings of the second symposium on Usable privacy and security 
SOUPS '06 

Publisher: ACIVl Press 

Full text available: ^ pdfd 90.59 KB) Additional Information: full citation , abstract , references , index terms 

Given the widespread use of password autfientication in online correspondence, 
subscription services, and stiopping, there is growing concern about identity theft. When 
people reuse their passwords across multiple accounts, they increase their vulnerability; 
compromising one password can help an attacl<er tal<e over several accounts. Our study 
of 49 undergraduates quantifies how many passwords they had and how often they 
reused these passwords. The majority of users had three or fewer passwords and ... 

Keywords: password, password management, password reuse, security, survey, user 
behavior 



12 A taxonomy of connputer program security flaws 

Carl E. Landwehr, Alan R. Bull, John P. McDermott, William S. Choi 
September 1994 ACM Computing Surveys (CSUR), volume 26 issue 3 

Publisher: ACM Press 

Full text available- pdf(3,81 MB) Additional Information: full citation , abstract , references , citing s, index 

terms , review 

An organized record of actual flaws can be useful to computer system designers, 
programmers, analysts, administrators, and users. This survey provides a taxonomy for 
computer program security flaws, with an Appendix that documents 50 actual security 
flaws. These flaws have all been described previously in the open literature, but in widely 
separated places. For those new to the field of computer security, they provide a good 
introduction to the characteristics of security flaws and how they ... 

Keywords: error/defect classification, security flaw, taxonomy 



13 Protection and the control of information sharing in multics 
^ Jerome H. Saltzer 

July 1974 Communications of the ACM, Volume 17 issue 7 

Publisher: ACM Press 

c II* * -I ft ^f/4-fCKAD\ Additional Information: full citation , abstract , references , citing s. Index 

Full text available: TiL| pdf(1.75 MB) 

terms 

The design of mechanisnns to control the sharing of information in the Multics system is 
described. Five design principles help provide insight into the tradeoffs among different 
possible designs. The key mechanisms described include access control lists, hierarchical 
control of access specifications, identification and authentication of users, and primary 
memory protection. The paper ends with a discussion of several known weaknesses in the 
current protection mechanism design. 

Keywords: Multics, access control, authentication, computer utilities, descriptors, 
privacy, proprietary programs, protected subsystems, protection, security, time-sharing 
systems, virtual memory 
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A new model of security for distributed systems 
Wm A. Wulf, Chenxi Wang, Darrell Kienzle 

September 1996 Proceedings of the 1996 workshop on New security paradigms NSPW 
*96 

Publisher: ACM Press 

Full text available: gpdfd.lO MB) Additional Information: full citation , references , citings , index terms 



15 Level II technical support in a distributed computin g environment 
Tim Leehane 

September 1996 Proceedings of the 24th annual ACM SIGUCCS conference on User 
services SIGUCCS '96 

Publisher: ACM Press 

Full text available: g pdf(573 MB) Additional Information: full citation , references , index terms 



16 User authentication through keystroke dynamics 
Francesco Bergadano, Danlele Gunetti, Claudia Picardi 

November 2002 ACM Transactions on Information and System Security (TISSEC), 

Volume 5 Issue 4 
Publisher: ACM Press 

Full text available- fg|pdf( 351.Q2 KB) Additional Information: full citation , abstract, references , eitings, indix 
^ terms , review 

Unlike other access control systems based on biometric features, keystroke analysis has 
not led to techniques providing an acceptable level of accuracy. The reason is probably 
the intrinsic variability of typing dynamics, versus other— -very stable— biometric 
characteristics, such as face or fingerprint patterns. In'this paper we present an original 
measure for keystroke dynamics that limits the instability of this biometric feature. We 
have tested our approach on 154 individuals, achieving a F ... 

Keywords: Biometric techniques, keystroke analysis 



17 Measurement: A high-level p ro gramming environment for packet trace anonymization 

and transformation 
Ruoming Pang, Vern Paxson 

August 2003 Proceedings of tlie 2003 conference on Applications, teclinologies, 

architectures, and protocols for computer communications SIGCOMM '03 
Publisher: ACM Press 

Full text available- 115 pdf(251 27 KB) Additional Information: fM elation, abstract, references , citings, index 
■ = terms 

Packet traces of operational Internet traffic are Invaluable to network research, but public 
sharing of such traces is severely limited by the need to first remove all sensitive 
information. Current trace anonymization technology leaves only the packet headers 
intact, completely stripping the contents; to our knowledge, there are no publicly 
available traces of any significant size that contain packet payloads. We describe a new 
approach to transform and anonymize packet traces. Our tool provide ... 

Keywords: anonymization, internet, measurement, network Intrusion detection, packet 
trace, privacy, transformation 
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John S. Quarterman, Josiah C. Hoskins 
October 1986 Communications of the ACM, volume 29 issue lo 
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Connputer networks are becoming more numerous and more diverse. Collectively, they 
constitute a worldwide metanetwork. 

19 Distributed operating s ystenns 
Andrew S. Tanenbaum, Robbert Van Renesse 
December 1985 ACM Computing Surveys (CSUR), volume 17 issue 4 

Publisher: ACM Press 
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Full text available: to pdf(5.49 MB) : 

terms , review 

Distributed operating systems have many aspects in common with centralized ones, but 
they also differ in certain ways. This paper is intended as an Introduction to distributed 
operating systems, and especially to current university research about them. After a 
discussion of what constitutes a distributed operating system and how it is distinguished 
from a computer network, various key design issues are discussed. Then several 
examples of current research projects are examined in some detail ... 

20 4.2BSD and 4.3BSD as examples of the UNIX system 
John S. Quarterman, Abraham Silberschatz, James L. Peterson 
December 1985 ACM Computing Surveys (CSUR), volume i7 issue 4 

Publisher: ACM Press 

.1* ^ I ui 0 ^f^An-^^AOK Additional Information: full citation , abstract , references , citings , index 
Full text available: TO pdf 4.07 MB) ^ 
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This paper presents an in-depth examination of the 4.2 Berkeley Software Distribution, 
Virtual VAX-11 Version (4.2BSD), which is a version of the UNIX Time-Sharing System. 
There are notes throughout on 4.3BSD, the forthcoming system from the University of 
California at Berkeley. We trace the historical development of the UNIX system from its 
conception in 1969 until today, and describe the design principles that have guided this 
development. We then present the internal data structures and ... 
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